Open Design Drawings SDK 2023.6

CPE Details

Open Design Drawings SDK 2023.6
opendesign
drawings_sdk
2023.6
2023-04-21
13h46 +00:00
2023-08-11
21h44 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:opendesign:drawings_sdk:2023.6:*:*:*:*:*:*:*

Informations

Vendor

opendesign

Product

drawings_sdk

Version

2023.6

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-5180 2023-12-26 08h35 +00:00 An issue was discovered in Open Design Alliance Drawings SDK before 2024.12. A corrupted value of number of sectors used by the Fat structure in a crafted DGN file leads to an out-of-bounds write. An attacker can leverage this vulnerability to execute code in the context of the current process.
7.8
High
CVE-2023-5179 2023-11-07 15h16 +00:00 An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution.
7.8
High
CVE-2023-26495 2023-04-10 00h00 +00:00 An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code.
7.8
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.